MAL-2025-186208 Malicious code in colors-rigel-bellatrix-pyxis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c137eaed40b31b6152069e498b6ba1512a5e4a72eca57a6d5eaed47da47afb55 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187055 Malicious code in function-bundle-log-validate-grid (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a35fd81b2277d6c9f3ea3bf6f2675c20d346503b3d766e1488c95eb5d44700c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188542 Malicious code in palynology-semantic-release-pulsar-wormhole (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34206c99211389792c4d934032f76e4292094dac40215fc8bc1353575dcefef7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187626 Malicious code in json-miranda-karma-auth0 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e21153db14daaf54497f5b3ea3e6b717421a572780efa5d938efdcb121cd30f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186397 Malicious code in cryonics-neutronstar-webdriver-mocha-whitedwarf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a4b05c0c53a0d448df82872cee2b18e5bff3f2660a4e6b65d8944adf0e9fd96 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186243 Malicious code in commitizen-radioastronomy-steganography-grunt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4570637a2fc26f6065d9a514ce97d5a5427454e1864df6aeeea4fd1563720406 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185383 Malicious code in achernar-zenith-ultra-joviology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b10086bc1fa64586a64925f5ec4a2a3c346bd5e465318b0be544bd740ae44344 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188098 Malicious code in module-biomimicry-rollup-comet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6fa045d9a66f5f630078406a5a9461d4933cfbab47967b212eafc50ee94bff1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186849 Malicious code in eslint-plugin-semantic-release-chalk-fusion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7f76b381638ad18356b8c8d18b10785d541bf3b50f7d3ed0032bd37f205212b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188226 Malicious code in neptune-redshift-semantic-release-xml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc439e829e757752b4ff8b2dbe8582cddd0435d867d34393544d740548b33caf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188497 Malicious code in paleoanthropology-helios-auth-panspermia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e67ea5fb796d68a806e68066027f59e37e6980576eca3fca83fbc833334b5e0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189640 Malicious code in stack-compress-nu-zeta-mock (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 175e67631711d41d02520521df6190627ee39430a578d67183c97e9628a7568b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189797 Malicious code in tachyon-asthenosphere-less-loader-dagda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f21c3181d7e1225e94cf6ec96aac89e6b7e7832996548331008eb289be9aa746 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189551 Malicious code in soap-auth0-tailwindcss-convict (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ec2c20f4554ecdd1eb1848e47edc8c1868596d8237df69b171abc1da7ceb1c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186762 Malicious code in entanglement-tachyon-puppeteer-cressida (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21af6694d2fdfb041779ff22101ae9ceccfaa3aead0c06ed58b80d7e02646466 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188365 Malicious code in nu-grid-import-chi-assert (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 200f766004c24652d0932dc06aa4b8466f33c8f680b403bc5562d701a3973417 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186262 Malicious code in compress-async-rho-boolean-assert (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b47a72962d3c729d5d4253ec9d28d30df0480c577add110900f74126b32e3a6e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185519 Malicious code in archaeoastronomy-blaze-panspermia-quark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 74ce19487a2c3093fd4a1524dc20d5246b2f30463a959ed1694fd6e25204a8af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187135 Malicious code in gemini-dactyl-archaeogenetics-morgan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 024021df6c02db9e21ee90ac2aa96821f37266ff503afc54cb6f404fd6724214 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185361 Malicious code in ablation-entanglement-got-epigenetics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f8c9524739c912fc11604d6c93045b1cb8aa898c7abe96b855fe424639842b8e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...